diff options
| author | djm <> | 2008-09-06 12:17:54 +0000 |
|---|---|---|
| committer | djm <> | 2008-09-06 12:17:54 +0000 |
| commit | 38ce604e3cc97706b876b0525ddff0121115456d (patch) | |
| tree | 7ccc28afe1789ea3dbedf72365f955d5b8e105b5 /src/lib/libcrypto/ec/ecp_nist.c | |
| parent | 12867252827c8efaa8ddd1fa3b3d6e321e2bcdef (diff) | |
| download | openbsd-38ce604e3cc97706b876b0525ddff0121115456d.tar.gz openbsd-38ce604e3cc97706b876b0525ddff0121115456d.tar.bz2 openbsd-38ce604e3cc97706b876b0525ddff0121115456d.zip | |
resolve conflicts
Diffstat (limited to 'src/lib/libcrypto/ec/ecp_nist.c')
| -rw-r--r-- | src/lib/libcrypto/ec/ecp_nist.c | 180 |
1 files changed, 141 insertions, 39 deletions
diff --git a/src/lib/libcrypto/ec/ecp_nist.c b/src/lib/libcrypto/ec/ecp_nist.c index ed07748675..71893d5eab 100644 --- a/src/lib/libcrypto/ec/ecp_nist.c +++ b/src/lib/libcrypto/ec/ecp_nist.c | |||
| @@ -1,6 +1,9 @@ | |||
| 1 | /* crypto/ec/ecp_nist.c */ | 1 | /* crypto/ec/ecp_nist.c */ |
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 2 | /* ==================================================================== | 5 | /* ==================================================================== |
| 3 | * Copyright (c) 1998-2001 The OpenSSL Project. All rights reserved. | 6 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. |
| 4 | * | 7 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 8 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 9 | * modification, are permitted provided that the following conditions |
| @@ -52,23 +55,30 @@ | |||
| 52 | * Hudson (tjh@cryptsoft.com). | 55 | * Hudson (tjh@cryptsoft.com). |
| 53 | * | 56 | * |
| 54 | */ | 57 | */ |
| 58 | /* ==================================================================== | ||
| 59 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 60 | * Portions of this software developed by SUN MICROSYSTEMS, INC., | ||
| 61 | * and contributed to the OpenSSL project. | ||
| 62 | */ | ||
| 55 | 63 | ||
| 64 | #include <limits.h> | ||
| 65 | |||
| 66 | #include <openssl/err.h> | ||
| 67 | #include <openssl/obj_mac.h> | ||
| 56 | #include "ec_lcl.h" | 68 | #include "ec_lcl.h" |
| 57 | 69 | ||
| 58 | #if 0 | ||
| 59 | const EC_METHOD *EC_GFp_nist_method(void) | 70 | const EC_METHOD *EC_GFp_nist_method(void) |
| 60 | { | 71 | { |
| 61 | static const EC_METHOD ret = { | 72 | static const EC_METHOD ret = { |
| 62 | ec_GFp_nist_group_init, | 73 | NID_X9_62_prime_field, |
| 63 | ec_GFp_nist_group_finish, | 74 | ec_GFp_simple_group_init, |
| 64 | ec_GFp_nist_group_clear_finish, | 75 | ec_GFp_simple_group_finish, |
| 76 | ec_GFp_simple_group_clear_finish, | ||
| 65 | ec_GFp_nist_group_copy, | 77 | ec_GFp_nist_group_copy, |
| 66 | ec_GFp_nist_group_set_curve_GFp, | 78 | ec_GFp_nist_group_set_curve, |
| 67 | ec_GFp_simple_group_get_curve_GFp, | 79 | ec_GFp_simple_group_get_curve, |
| 68 | ec_GFp_simple_group_set_generator, | 80 | ec_GFp_simple_group_get_degree, |
| 69 | ec_GFp_simple_group_get0_generator, | 81 | ec_GFp_simple_group_check_discriminant, |
| 70 | ec_GFp_simple_group_get_order, | ||
| 71 | ec_GFp_simple_group_get_cofactor, | ||
| 72 | ec_GFp_simple_point_init, | 82 | ec_GFp_simple_point_init, |
| 73 | ec_GFp_simple_point_finish, | 83 | ec_GFp_simple_point_finish, |
| 74 | ec_GFp_simple_point_clear_finish, | 84 | ec_GFp_simple_point_clear_finish, |
| @@ -76,9 +86,9 @@ const EC_METHOD *EC_GFp_nist_method(void) | |||
| 76 | ec_GFp_simple_point_set_to_infinity, | 86 | ec_GFp_simple_point_set_to_infinity, |
| 77 | ec_GFp_simple_set_Jprojective_coordinates_GFp, | 87 | ec_GFp_simple_set_Jprojective_coordinates_GFp, |
| 78 | ec_GFp_simple_get_Jprojective_coordinates_GFp, | 88 | ec_GFp_simple_get_Jprojective_coordinates_GFp, |
| 79 | ec_GFp_simple_point_set_affine_coordinates_GFp, | 89 | ec_GFp_simple_point_set_affine_coordinates, |
| 80 | ec_GFp_simple_point_get_affine_coordinates_GFp, | 90 | ec_GFp_simple_point_get_affine_coordinates, |
| 81 | ec_GFp_simple_set_compressed_coordinates_GFp, | 91 | ec_GFp_simple_set_compressed_coordinates, |
| 82 | ec_GFp_simple_point2oct, | 92 | ec_GFp_simple_point2oct, |
| 83 | ec_GFp_simple_oct2point, | 93 | ec_GFp_simple_oct2point, |
| 84 | ec_GFp_simple_add, | 94 | ec_GFp_simple_add, |
| @@ -89,46 +99,138 @@ const EC_METHOD *EC_GFp_nist_method(void) | |||
| 89 | ec_GFp_simple_cmp, | 99 | ec_GFp_simple_cmp, |
| 90 | ec_GFp_simple_make_affine, | 100 | ec_GFp_simple_make_affine, |
| 91 | ec_GFp_simple_points_make_affine, | 101 | ec_GFp_simple_points_make_affine, |
| 102 | 0 /* mul */, | ||
| 103 | 0 /* precompute_mult */, | ||
| 104 | 0 /* have_precompute_mult */, | ||
| 92 | ec_GFp_nist_field_mul, | 105 | ec_GFp_nist_field_mul, |
| 93 | ec_GFp_nist_field_sqr, | 106 | ec_GFp_nist_field_sqr, |
| 107 | 0 /* field_div */, | ||
| 94 | 0 /* field_encode */, | 108 | 0 /* field_encode */, |
| 95 | 0 /* field_decode */, | 109 | 0 /* field_decode */, |
| 96 | 0 /* field_set_to_one */ }; | 110 | 0 /* field_set_to_one */ }; |
| 97 | 111 | ||
| 98 | return &ret; | 112 | return &ret; |
| 99 | } | 113 | } |
| 100 | #endif | ||
| 101 | 114 | ||
| 115 | #if BN_BITS2 == 64 | ||
| 116 | #define NO_32_BIT_TYPE | ||
| 117 | #endif | ||
| 102 | 118 | ||
| 103 | int ec_GFp_nist_group_init(EC_GROUP *group) | 119 | int ec_GFp_nist_group_copy(EC_GROUP *dest, const EC_GROUP *src) |
| 104 | { | 120 | { |
| 105 | int ok; | 121 | dest->field_mod_func = src->field_mod_func; |
| 106 | 122 | ||
| 107 | ok = ec_GFp_simple_group_init(group); | 123 | return ec_GFp_simple_group_copy(dest, src); |
| 108 | group->field_data1 = NULL; | ||
| 109 | return ok; | ||
| 110 | } | 124 | } |
| 111 | 125 | ||
| 112 | 126 | int ec_GFp_nist_group_set_curve(EC_GROUP *group, const BIGNUM *p, | |
| 113 | int ec_GFp_nist_group_set_curve_GFp(EC_GROUP *group, const BIGNUM *p, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx); | 127 | const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx) |
| 114 | /* TODO */ | 128 | { |
| 115 | 129 | int ret = 0; | |
| 116 | 130 | BN_CTX *new_ctx = NULL; | |
| 117 | void ec_GFp_nist_group_finish(EC_GROUP *group); | 131 | BIGNUM *tmp_bn; |
| 118 | /* TODO */ | 132 | |
| 119 | 133 | if (ctx == NULL) | |
| 120 | 134 | if ((ctx = new_ctx = BN_CTX_new()) == NULL) return 0; | |
| 121 | void ec_GFp_nist_group_clear_finish(EC_GROUP *group); | 135 | |
| 122 | /* TODO */ | 136 | BN_CTX_start(ctx); |
| 123 | 137 | if ((tmp_bn = BN_CTX_get(ctx)) == NULL) goto err; | |
| 124 | 138 | ||
| 125 | int ec_GFp_nist_group_copy(EC_GROUP *dest, const EC_GROUP *src); | 139 | if (BN_ucmp(BN_get0_nist_prime_192(), p) == 0) |
| 126 | /* TODO */ | 140 | group->field_mod_func = BN_nist_mod_192; |
| 141 | else if (BN_ucmp(BN_get0_nist_prime_224(), p) == 0) | ||
| 142 | { | ||
| 143 | #ifndef NO_32_BIT_TYPE | ||
| 144 | group->field_mod_func = BN_nist_mod_224; | ||
| 145 | #else | ||
| 146 | ECerr(EC_F_EC_GFP_NIST_GROUP_SET_CURVE, EC_R_NOT_A_SUPPORTED_NIST_PRIME); | ||
| 147 | goto err; | ||
| 148 | #endif | ||
| 149 | } | ||
| 150 | else if (BN_ucmp(BN_get0_nist_prime_256(), p) == 0) | ||
| 151 | { | ||
| 152 | #ifndef NO_32_BIT_TYPE | ||
| 153 | group->field_mod_func = BN_nist_mod_256; | ||
| 154 | #else | ||
| 155 | ECerr(EC_F_EC_GFP_NIST_GROUP_SET_CURVE, EC_R_NOT_A_SUPPORTED_NIST_PRIME); | ||
| 156 | goto err; | ||
| 157 | #endif | ||
| 158 | } | ||
| 159 | else if (BN_ucmp(BN_get0_nist_prime_384(), p) == 0) | ||
| 160 | { | ||
| 161 | #ifndef NO_32_BIT_TYPE | ||
| 162 | group->field_mod_func = BN_nist_mod_384; | ||
| 163 | #else | ||
| 164 | ECerr(EC_F_EC_GFP_NIST_GROUP_SET_CURVE, EC_R_NOT_A_SUPPORTED_NIST_PRIME); | ||
| 165 | goto err; | ||
| 166 | #endif | ||
| 167 | } | ||
| 168 | else if (BN_ucmp(BN_get0_nist_prime_521(), p) == 0) | ||
| 169 | /* this one works in the NO_32_BIT_TYPE case */ | ||
| 170 | group->field_mod_func = BN_nist_mod_521; | ||
| 171 | else | ||
| 172 | { | ||
| 173 | ECerr(EC_F_EC_GFP_NIST_GROUP_SET_CURVE, EC_R_NOT_A_NIST_PRIME); | ||
| 174 | goto err; | ||
| 175 | } | ||
| 176 | |||
| 177 | ret = ec_GFp_simple_group_set_curve(group, p, a, b, ctx); | ||
| 178 | |||
| 179 | err: | ||
| 180 | BN_CTX_end(ctx); | ||
| 181 | if (new_ctx != NULL) | ||
| 182 | BN_CTX_free(new_ctx); | ||
| 183 | return ret; | ||
| 184 | } | ||
| 127 | 185 | ||
| 128 | 186 | ||
| 129 | int ec_GFp_nist_field_mul(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx); | 187 | int ec_GFp_nist_field_mul(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, |
| 130 | /* TODO */ | 188 | const BIGNUM *b, BN_CTX *ctx) |
| 189 | { | ||
| 190 | int ret=0; | ||
| 191 | BN_CTX *ctx_new=NULL; | ||
| 192 | |||
| 193 | if (!group || !r || !a || !b) | ||
| 194 | { | ||
| 195 | ECerr(EC_F_EC_GFP_NIST_FIELD_MUL, ERR_R_PASSED_NULL_PARAMETER); | ||
| 196 | goto err; | ||
| 197 | } | ||
| 198 | if (!ctx) | ||
| 199 | if ((ctx_new = ctx = BN_CTX_new()) == NULL) goto err; | ||
| 200 | |||
| 201 | if (!BN_mul(r, a, b, ctx)) goto err; | ||
| 202 | if (!group->field_mod_func(r, r, &group->field, ctx)) | ||
| 203 | goto err; | ||
| 204 | |||
| 205 | ret=1; | ||
| 206 | err: | ||
| 207 | if (ctx_new) | ||
| 208 | BN_CTX_free(ctx_new); | ||
| 209 | return ret; | ||
| 210 | } | ||
| 131 | 211 | ||
| 132 | 212 | ||
| 133 | int ec_GFp_nist_field_sqr(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, BN_CTX *ctx); | 213 | int ec_GFp_nist_field_sqr(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, |
| 134 | /* TODO */ | 214 | BN_CTX *ctx) |
| 215 | { | ||
| 216 | int ret=0; | ||
| 217 | BN_CTX *ctx_new=NULL; | ||
| 218 | |||
| 219 | if (!group || !r || !a) | ||
| 220 | { | ||
| 221 | ECerr(EC_F_EC_GFP_NIST_FIELD_SQR, EC_R_PASSED_NULL_PARAMETER); | ||
| 222 | goto err; | ||
| 223 | } | ||
| 224 | if (!ctx) | ||
| 225 | if ((ctx_new = ctx = BN_CTX_new()) == NULL) goto err; | ||
| 226 | |||
| 227 | if (!BN_sqr(r, a, ctx)) goto err; | ||
| 228 | if (!group->field_mod_func(r, r, &group->field, ctx)) | ||
| 229 | goto err; | ||
| 230 | |||
| 231 | ret=1; | ||
| 232 | err: | ||
| 233 | if (ctx_new) | ||
| 234 | BN_CTX_free(ctx_new); | ||
| 235 | return ret; | ||
| 236 | } | ||